icedid | 41aa34a3ca262b5085f8cbe60ab374aaa962fa2fb7fae7738070eb5822471a8e | Triage

Sharing

General

Target

JaffaCakes118_41aa34a3ca262b5085f8cbe60ab374aaa962fa2fb7fae7738070eb5822471a8e
Size

490KB
Sample

241223-vb1h3svqan
MD5

dea1b1681b11e5711e3fffdc296fe2eb
SHA1

e8485231779c9f0b1caf247608922fc3198cb938
SHA256

41aa34a3ca262b5085f8cbe60ab374aaa962fa2fb7fae7738070eb5822471a8e
SHA512

3e3f8289f54a1e097c7e116ad49a864d39630c45e615d10648a1a591858daeb1cff98756aab375135f82969be22476ee62edca6f74e38d4e392842c42a10f090
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_41aa34a3ca262b5085f8cbe60ab374aaa962fa2fb7fae7738070eb5822471a8e
- Size
  
  490KB
- MD5
  
  dea1b1681b11e5711e3fffdc296fe2eb
- SHA1
  
  e8485231779c9f0b1caf247608922fc3198cb938
- SHA256
  
  41aa34a3ca262b5085f8cbe60ab374aaa962fa2fb7fae7738070eb5822471a8e
- SHA512
  
  3e3f8289f54a1e097c7e116ad49a864d39630c45e615d10648a1a591858daeb1cff98756aab375135f82969be22476ee62edca6f74e38d4e392842c42a10f090
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan